diff options
Diffstat (limited to 'includes/model/User.php')
| -rwxr-xr-x | includes/model/User.php | 60 |
1 files changed, 55 insertions, 5 deletions
diff --git a/includes/model/User.php b/includes/model/User.php index e489edf..e497fc6 100755 --- a/includes/model/User.php +++ b/includes/model/User.php @@ -3,6 +3,18 @@ include_once './includes/Database.php'; const USER_LEVEL_MODERATOR = 'moderator';
+function generate_invite_code(): string
+{
+ $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
+ $result = '';
+
+ for ($i = 0; $i < 8; $i++) {
+ $result .= $characters[rand(0, strlen($characters) - 1)];
+ }
+
+ return $result;
+}
+
class User
{
public $id;
@@ -10,14 +22,15 @@ class User public $password;
public $date_registered;
public $level = 'user';
+ public $invite_code;
private $has_value = false;
// Can't use a constructor here because we have two possible ways to get the user from the database
- // and PHP does not allow function overloading.
+ // and PHP does not allow function overloading.
public function get_by_id($id)
{
- $sql = "SELECT user_name, user_date_registered, user_level, user_password FROM users WHERE user_id = ?;";
+ $sql = "SELECT user_name, user_password, user_date_registered, user_level, user_invite_code FROM users WHERE user_id = ?;";
$result = Database::get()->query($sql, "i", $id);
if (empty($result)) {
@@ -29,13 +42,15 @@ class User $this->password = $result[0]['user_password'];
$this->date_registered = $result[0]['user_date_registered'];
$this->level = $result[0]['user_level'];
+ $this->invite_code = $result[0]['user_invite_code'];
$this->has_value = true;
}
+ // TODO: Duplicated code, there should be a common database read function for all models
public function get_by_name($name)
{
- $sql = "SELECT user_id, user_date_registered, user_level, user_password FROM users WHERE user_name = ?";
+ $sql = "SELECT user_id, user_password, user_date_registered, user_level, user_invite_code FROM users WHERE user_name = ?;";
$result = Database::get()->query($sql, "s", $name);
if (empty($result)) {
@@ -47,6 +62,26 @@ class User $this->password = $result[0]['user_password'];
$this->date_registered = $result[0]['user_date_registered'];
$this->level = $result[0]['user_level'];
+ $this->invite_code = $result[0]['user_invite_code'];
+
+ $this->has_value = true;
+ }
+
+ public function get_by_invite_code($invite_code)
+ {
+ $sql = "SELECT user_id, user_name, user_password, user_date_registered, user_level FROM users WHERE user_invite_code = ?;";
+ $result = Database::get()->query($sql, "s", $invite_code);
+
+ if (empty($result)) {
+ return;
+ }
+
+ $this->id = $result[0]['user_id'];
+ $this->name = $result[0]['user_name'];
+ $this->password = $result[0]['user_password'];
+ $this->date_registered = $result[0]['user_date_registered'];
+ $this->level = $result[0]['user_level'];
+ $this->invite_code = $invite_code;
$this->has_value = true;
}
@@ -58,9 +93,16 @@ class User public static function register(string $username, string $password)
{
- $sql = "INSERT INTO users(user_name, user_password, user_date_registered) VALUES(?, ?, NOW());";
+ $sql = "INSERT INTO users(user_name, user_password, user_date_registered, user_invite_code) VALUES(?, ?, NOW(), ?);";
$pass_hash = password_hash($password, PASSWORD_DEFAULT);
- Database::get()->query($sql, "ss", $username, $pass_hash);
+ $invite_code = generate_invite_code();
+ Database::get()->query($sql, "sss", $username, $pass_hash, $invite_code);
+ }
+
+ public function update_invite_code()
+ {
+ $sql = "UPDATE users SET user_invite_code = ? WHERE user_id = ?";
+ Database::get()->query($sql, "si", generate_invite_code(), $this->id);
}
public function change_password(string $pass_hash)
@@ -101,4 +143,12 @@ class User return !empty($result);
}
+
+ public static function invite_code_exists($invite_code): bool
+ {
+ $sql = "SELECT * FROM users WHERE user_invite_code = ?;";
+ $result = Database::get()->query($sql, "s", $invite_code);
+
+ return !empty($result);
+ }
}
|